Share Cybersecurity experts have recently given several major warnings about more than 20 dangerous cryptocurrency wallet apps. Experts from Cyble Research and Intelligence Labs (CRIL) mentioned how these 20 wallets are infiltrating the Google Play Store. Additionally, people think that their downloads are protected by Google security policies, but these apps are so powerful that they are infiltrating the Google Play Store.
These apps may look genuine at first glance, but they’re actually part of a carefully crafted phishing campaign designed to steal your most sensitive financial credentials.
These apps work in a way where they don’t just sit idly on your smartphone, but as soon as they are installed, they will actively prompt users to enter their 12 word recovery phrase. This 12 word phrase is used to access and restore cryptocurrency wallets.
If someone is entering their 12 word phrase asked by these apps, then cybercriminals can take complete control of their wallet and drain all assets without warning.
What makes these apps worse is the fact that these apps looks just like the professional apps and often mimic the look and feel of legitimate DeFi wallets such as SushiSwap, PancakeSwap, Hyperliquid, and Raydium.
Under these apps, attackers take over developer accounts previously used for safe apps such as games or video tools and repurpose them to distribute fake crypto wallet applications. This technique gives them a head start by leveraging existing user trust.
These apps also embed phishing links inside privacy policy documents along with copying the design of the official apps. Additionally, they adopt nearly identical package names. The goal of these apps is to fly under the Google’s radar and quickly across a wide range of unsuspecting devices.
Author Name | Deepti Ratnam
Don't Miss Out the Latest Updates. Subscribe to Our Newsletter Today!
Select Language
